Overview

Based on SiteLock's analysis of 7 million websites, we've determined the most prevalent security threats facing website owners this year. Understanding today's attack surface enables you to make educated and proactive decisions about your cybersecurity strategy and help prevent a security breach that could impact your visitors, reputation, or revenue.

Threat Landscape

Every week, an average of 2,608 bots visit a site. 88% of these websites are infected with malware not blocked by search engines. That's nearly 9 in 10 websites missed by search engines.

How often are sites attacked?

What makes sites more vulnerable?

• WordPress sites are three times as likely to have malware than non-CMS sites. 18% of WordPress sites have at least one vulnerability, including SQLI, CSRF, and XXS.
• Plugins impact WordPress vulnerability at the following rates:

  

  This means that you nearly double the risk of getting compromised for every 5 plugins you add to your site. As a best practice, users should remove any plugins they are no longer using.

How successful are cyber attackers?

• We estimate that 12.8 Million sites worldwide are infected with malware.
• Nearly 1 out of every 100 of those sites could be infected with malware.

What is a high-risk site?

Websites deemed high-risk by our SiteLock Risk Score are 24x more likely to be infected by malware.

What are the top threats to websites?

Websites infected with malware contained at least one of these top cyber threats: